Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
File: idvHFWpO58Z9nmhHZ6L0uvijW6s.mft (raw, json)
Hash identifier: VSs8b6Fwd0gpbudwm26Q+gtl64f9XMA7cfkGBOyaBnU=
Subject key identifier: BD:FE:0A:2B:2E:7B:21:10:03:9F:4E:CA:DF:B3:9E:AD:8C:3C:66:1D
Authority key identifier: 89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
Certificate issuer: /CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Certificate serial: 019D9C9A1C63F4A111598B87AB459FEFF7D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
Manifest number: 18C9
Signing time: Fri 17 Apr 2026 18:00:38 +0000
Manifest this update: Fri 17 Apr 2026 18:00:38 +0000
Manifest next update: Sat 18 Apr 2026 18:00:38 +0000
Files and hashes: 1: 0CdqlW01ACbv3EQD2O6eNsK9tUw.asa (hash: 9WhwZoBfEGd5k4zvC4ZA/vr5vp3EXDon/OkKYutAIU0=)
2: GBd4rVL5dJN0-9cuwhBBwNEyoV0.roa (hash: iRjXs3gr4L7byQxpcKRUar4Pisuwylgwnacqi0QdLQQ=)
3: PLZ1UvYELfgIKPLrh6OHNKK9acc.roa (hash: Shni7jpvErA8s5MzWpDHouyJxJ3M6Tbya9IWgb+KMM8=)
4: idvHFWpO58Z9nmhHZ6L0uvijW6s.crl (hash: mymHzRdYLkIIxLYIcyRjZRLCp4aVjo8RKZ9/XWJu5XY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:1c:63:f4:a1:11:59:8b:87:ab:45:9f:ef:f7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Validity
Not Before: Apr 17 18:00:38 2026 GMT
Not After : Apr 18 18:00:38 2026 GMT
Subject: CN=bdfe0a2b2e7b2110039f4ecadfb39ead8c3c661d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ee:a5:db:44:48:21:d2:ff:5c:fb:59:90:65:
a7:3f:69:95:5d:63:d7:e2:60:d8:41:52:e9:f6:25:
db:79:e0:db:22:94:15:5c:09:98:13:d8:61:e1:79:
2c:93:3a:c4:f0:fe:8f:0d:28:b1:1e:58:1e:4f:14:
16:0a:7d:aa:26:a9:e0:91:b3:35:bc:cb:40:b2:f0:
39:fe:cf:05:2e:5e:54:af:1d:72:ac:f3:ea:f5:32:
a9:77:df:81:92:4b:94:c2:a3:16:1e:a5:1e:a3:7f:
54:c7:0c:3b:59:eb:75:db:65:2e:6d:2d:4e:0a:09:
c4:10:96:a7:fb:5a:de:7d:79:ee:14:8a:a7:4e:93:
48:7b:95:c0:c3:2d:c4:67:1c:a5:e3:81:a7:ba:4f:
00:fa:37:e4:37:7c:61:59:ff:dd:f1:74:d5:84:e3:
5c:c8:95:f9:15:b2:21:6b:ce:5f:64:bf:ce:14:40:
18:4b:ac:78:c1:1c:43:3f:d2:73:ec:12:2a:02:91:
57:c2:57:50:ee:d8:00:1a:c9:54:96:f2:7f:a9:40:
f4:b0:74:b2:1d:bd:34:b9:70:e7:ab:25:df:58:67:
08:8a:cb:8e:6e:6e:00:ab:be:ea:be:c5:0d:b1:f9:
29:8c:90:e7:59:0f:9d:bb:36:26:27:cf:30:29:6b:
8f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:FE:0A:2B:2E:7B:21:10:03:9F:4E:CA:DF:B3:9E:AD:8C:3C:66:1D
X509v3 Authority Key Identifier:
keyid:89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:46:1a:3f:bf:12:fe:0a:48:60:7f:50:44:08:12:8a:d8:44:
3a:c2:d8:12:f4:0d:9c:5f:df:a5:58:1a:45:9d:25:fa:e1:76:
b8:e9:24:4f:7b:81:c8:38:8f:bc:0e:db:41:16:dd:e3:32:e9:
00:32:55:ec:8f:b9:22:54:98:44:b1:0f:07:1c:19:b6:be:8b:
8a:d0:a9:a9:7f:8f:3c:d6:82:58:45:4c:f9:41:1c:8f:75:d6:
00:79:d1:f5:56:45:94:61:e9:28:53:5e:d5:7f:8d:b5:22:f4:
31:e3:e6:56:9a:8e:0c:43:76:2d:f8:c3:03:2c:55:93:c9:e9:
f9:62:37:88:b4:f1:c6:62:ad:f1:8f:2d:3c:81:e7:50:e8:d4:
f2:03:af:ea:82:57:30:3d:3c:bb:55:7a:3c:b3:13:60:2a:ef:
16:9c:ff:b9:a5:81:f0:f0:7c:34:fd:1b:86:4f:85:0b:b6:d9:
74:cb:4c:bd:16:8d:81:81:62:1d:d9:96:29:a5:84:11:05:b7:
23:21:9a:be:80:89:f3:f3:6d:ad:cb:62:bb:b1:a3:73:ad:8d:
22:67:89:9c:67:eb:36:14:1f:50:bf:9a:fc:8d:be:3f:69:da:
13:5c:6f:89:a0:84:bf:df:31:5a:13:ca:1d:0c:70:d4:48:8d:
ca:3c:34:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:48:14 2026 by rpki-client